So I woke up today checking out my sites, and looking outside.   So As I was checking my Stats for my blog.  I cam across a referring site that brought Supposedly Two people to my site.  I looked at the URL for the site:

• http://trojan.fiftystatesclassifiedads.com/index.php

So after seeing the “trojan” Prefix and I am wondering if this was an attempt by Malware to infect my domain.   So I go check this domain out.   I got to it and I get a 404.  I then do a Cache Check with OPENDNS.  I also Then decided to see if it was even Registered domain by the doing a Whois.  So I am opening this up to people who might know.   I did do some research and here’s wha I’ve found out so far.

According to How2hack, they talk about how people want privacy and that it might be someone who does not want to be found.  I tend to agree with them, Privacy for Privacy sake is good but if you want to be private you would you even be checking out websites knowing people will want to find out who really is coming to your site.  The How2Hack site also talks about how this might happen and I see where they are coming from.

This was the only site I could find that even looked like it was relevant to what I was searching for.  I don’t see how someone can come to my site saying they were referred by another site and that site does not exist?  Anyone want to try to answer this question and give insight as to why this would happen?

©2010 . All Rights Reserved.

In my recent post, I talked about a Virus that is circulating around on Facebook.  It is know as the Koobface virus and has been changed a little by the programers.   So I what is Techworld saying, just this:

In fact, Koobface is now using one of Facebook’s own features against it, Lovet said. The latest variant uses Facebook’s ability to redirect web links to drive users to malicious websites, often hosted on Geocities.com, Lovet said.

[Via Techworld]

If you have been victim to this little virus, you should check out my Virus removal page and download the programs that should fix this little virus for good on your system.  You should also check out my Previous post I also have some good tips and tricks to prevent the user(YOU) from getting hit by this virus in the first place. This virus is a Good social engineered virus, so please be careful.

©2010 . All Rights Reserved.

In today’s society, we’ve been to complacent with people with people clicking links for the social group. In one such article on Channel Web, a nice little blog, says this:

The worm was discovered by IT security provider Kaspersky Lab, which said the threat, Net-Worm.Win32.Koobface.b, is targeting Facebook users by creating spam messages and sending them to the infected user’s friends via the site.

“Unfortunately, users are very trusting of messages left by ‘friends’ on social networking sites,” said Alexander Gostev, senior virus analyst at Kaspersky Lab, in a statement. “So, the likelihood of a user clicking on a link like this is very high.”

[Via Channel Web]

This seems to be a problem people thinking that a link someone sends them is a real good link but actually is a link to a video site. According to this article the links people are sending are actually a fake video link, telling you have to download some update to flash player, by downloading this program. The user gets involved with the virus and the fun begins. So how can you prevent this from happening, two ways one is a very good group of software to make sure you have the latest and greatest video codecs. That too can be something they’ll say you need and if you’ve already installed this list of codecs then you know they’ll not telling the truth and you can quickly get away from the site laughing.

Once you’ve done that, you’ll no longer have to worry for the most part about codecs. There will be times when you might have to visit that site and update them but that will be far less.

The other thing you must remember is if it says you must update your player. That should be a sign that there is something. I’ll always go to the site and check for example Adobe. If it says I need to update my flash I’ll manually type it into my browser. This way you will know you have the latest updates, if you need to update the flash player by all means go to here and update.

If you got the virus I’d check out my Anti-virus and Anti-Spyware page and that should show you will you need to get rid of the Virus. This virus is very easy to get rid of, just download any one of the anti-virus software and install it. Don’t forget to update the virus database while your at it. That should fix the problem pretty fast. Remember the only way to prevent from getting the virus is YOU.

©2010 . All Rights Reserved.

A new type of malware designed to harvest web passwords has been detected in-the-wild by BitDefender’s antivirus research labs. This latest e-threat – called Trojan.PWS.ChromeInject.A – is intended to be delivered onto a compromised computer system by other malware for subsequent download into Mozilla Firefox’s Plugin folder. Once installed it gets to work every time Firefox is started.

[Via Bitdefender]

So having seen this I thought I’d come up with ways around this to better protect yourself.  One way to prevent this from getting your sensitive data is to get a program like Sandboxie.   You could stop using Firefox that would be silly, because right now Firefox is more secure than Chrome and Internet Explorer.   I’d also suggest checking out my Anti-spyware page and Anti-Virus page and get some more protection.

The key to this virus protection is just be cautious of where you go and keep all you system update to date to prevent all this from happening.  It is also advisable to not have your passwords saved on Firefox, you should use something like Roboform, it is free  to download and try.  It will encrypt your passwords so if they don’t know the master password then they are out of luck.  Roboform is also good for coming up with some strong passwords.  Just some suggestions to prevent from people seeing your sensitive data, you don’t want anyone to get that data.

©2010 . All Rights Reserved.

Trojan-PSW:W32/Sinowal.CP drops and loads a password stealing component on the infected system and tries to steal account information from it. It also tries to steal information that is required to access certain online banks’ and online payment systems’ websites.

[via F-secure]

It seems to be a very hard virus to remove but there are ways to get rid of this virus.   Some tips and tricks to get rid are:

• Check out my Anti-Virus Page
• Computing.net
• The Geek Police
• How to Detect Sinowal

This are the beginning steps to get rid of a Virus but it will be a really hard virus because it wants to stay in your system.  You should also Restart in Safe mode and Try to remove that virus that one.   You will also want to disable your system restore due to the fact that it will be in there and might come back if you restore your system.  Just some simple tips to help keep you safe on the net.

©2010 . All Rights Reserved.

Kb957321

An update rollup is available for the Microsoft Windows Imaging Component (WIC) in Windows Vista or in Windows Server 2008. This update rollup resolves the problems that are documented in the following articles in the Microsoft Knowledge Base:

954708 An update to add support for the serialization of complex Extensible Metadata Platform (XMP) data types in the Windows Imaging Component

945060 There may be inconsistencies in the Extensible Metadata Platform (XMP) and Exchangeable Image File (EXIF) values for an image file in Windows Vista and in Windows XP

KB959108

The Windows Portable Device (WPD) API collects and transfers Software Quality Metrics (SQM) data to Microsoft servers. The SQM data is collected only on an opt-in basis through the Microsoft Customer Experience Improvement Program. An update is available that disables the collection and transfer of SQL data to Microsoft servers.

This update affects Windows Vista-based computers, Windows Vista Service Pack 1 (SP1)-based computers, and Windows Server 2008-based computers that are in the Microsoft Windows Media Player Customer Experience Improvement Program.

KB959130

On a Windows Vista-based computer or on a Windows Server 2008-based computer, you install a third-party Web browser. You set the third-party Web browser as the default Web browser. Then, you run the Connect to the Internet Wizard. However, if you select the Browse the Internet now option, Windows Internet Explorer starts instead of the third-party Web browser that you set as the default Web browser.

This seems to be not so important.  All of these are not really security related but it does surprise me that Microsoft wanted to release these out of Cycle.   If your planning on using your Vista laptop during the holidays you might want to update your vista machine before you go.  I don’t think there is going to be any major issues with this but if there is, you can always remove these updates later.

©2010 . All Rights Reserved.

Technorati released today they are going to Lay off 6 people and I will quote:

Unfortunately, this means sacrifices. Technorati’s management team members are taking pay cuts ranging from 15-25% and employees are taking 10% cut. This also includes the reallocation of staff. We’re laying off six employees today – including two executives — and there are two additional departures we won’t replace. These are high performers who have worked long hours to get us where we are now. They’re also friends, and we’re very sad to see them go. We simply need a leaner and reconfigured mix to get us through 2009.

[via Technorati Weblog]

They will also be taking pay cuts all through the company.  So the recession is hitting them also.  I am sure CEO Richard Jalichandra has the company interest in mind.  According to Techchunch, they have added these recent layoffs ticker.   You can also search my blog for other layoffs that have happened or will happen.

©2010 . All Rights Reserved.

The UM100c is No Longer Available, Please check out the Cricket A600 Modem Review Or the UM185 Broadband modem. The UM185 modem might be a replacement to the UM100.

After a full week of playing around with this USB wireless, I wanted to talk about it. So let’s break it down into pieces.

1. (USB Broadband A600 Modem card for Free after Instant online rebates and Mail in rebate Free shipping & first month free! Shop today.)
2. Installation –  The installation of the USB was not to difficult.  I did have to do some more steps than this:  Install the Software, then hooked up the USB device to the USB port.
3. Manual Activated the Broadband –  For some reason in my area they had several people have problems with the broadband activation.  So I had to activate it manually!!

After that all went well, I was on the internet just a cruising along.  I did however wonder why I was getting such a slow response speed.  When I went traveling I thought I would share some of my local results with you to better show you my speed.  All these test were done at

Please see an updated post on how to get even more speed from the broad band modem.
This speed is not the true speed for the broad band modem.

The Percentages over the results are showing you just what my signal strength was when I was doing the test.  Two of the 4 were traveling on the highway and the other two were stationary.  I also know that my speed will vary along with signal strength, I know I have to be a mile or less from a tower to get 100%.

*Update* 12/21/08

Update 12/24/2008
I also did travel with my laptop to another city, and I got to say it was really good and how it did when I went from one city to another. Check out the report here.
According to some post and forum talks around the the internet they are talking about the soft cap of 5 Gigabytes but that seems to not be so important right now.   After all, they have to make money some how.   I will update as necessary when I find anything else out.

update 1/01/09

I also did a video and uploaded it to youtube using the broadband connection. I had no problem uploading this video to Youtube. I’ve embedded it in this web page. See it on the bottom:

I also bought the A600 Cricket modem and I absolutely love this modem because of the things you can do with it.

©2010 . All Rights Reserved.

Just got done looking at some of my security sites and according to SecuriTeam there are are several programs that have vulnerabilities. here are the Ones that I’ve found:

Google chrome is vulnerable to URI Obfuscation vulnerability.
An attacker can easily perform malicious redirection by manipulating the browser functionality. The link can not be traversed properly in status address bar.This could facilitate the impersonation of legitimate web sites in order to steal sensitive information from unsuspecting users. The URI specified with @ character with or without NULL character causes the vulnerability.

iPhone Configuration Web Utility for Windows Directory Traversal
iPhone Configuration Web Utility lets “you easily create, sign and distribute configuration profiles using a web browser”. A vulnerability in iPhone Configuration Web Utility allows remote attackers to access files that reside outside the bounding root directory of the program’s files folder.

Streamripper Multiple Buffer Overflows
Streamripper “records Shoutcast and Live365 MP3 streams to a hard disk, creating separate files for each track. Runs under Unix and Windows.” Secunia Research has discovered some vulnerabilities in Streamripper, which can be exploited by malicious people to compromise a user’s system.

Amaya URL Bar Stack Overflow Vulnerability
A vulnerability in Amaya browser allows remote attackers to cause it to overflow an internal buffer which in turn can be leveraged to execute arbitrary code.

These are the ones that I found and wanted to let you know about these so you can make your system even more secure.   if I find any others I’ll let you know!!!

©2010 . All Rights Reserved.

I’ve been doing some research on what might be good to use in case, I was away from my home network.  I was thinking how safe am I at Starbucks or other places that I might doing my web.  So I did a little looking around to see which one I liked and I came to the conclusions that only one I need right now is:

The nice thing about this was the simple installation of the software and how easy it was to set it up. This service is in beta but seems to be really well done with regards to the end users. When you install this software and want to connect it uses the OpenVPN software with there configurations. OpenVPN, is a open sourced SSL VPN solution and is free to use. The way this this free is of Ad Supported banners. Now it is cheaper than paying monthly for a VPN service. The ones I’ve found so far are these few:

• OpenVPN (FREE)(*advertisement)(Linux, and Windows)
• Always VPN (Prepay) (5 GB to 80 GB limit) (Linux, Mac and Windows)*Out of Beta
  
• Hotspot Shield (FREE) (*advertisement) (Windows) (3 gig Cap)
  
• WiTopia (40$/ Year) (Mac, Linux, and Windows)

There is of course others out that but these are just a few that I saw that looks like the cheapest there is.  Others I’ve seen cost 40 to 50 dollars a month.   If you have any other ones that are free or cheap let me know.  I don’t think we need to pay a lot just to have security on an open network. I’m certain that they’re more out there but will keep looking for more later on. I did my initial research and will come back and find more.

*Update Feb 8, 2009*

As of recent a friend emailed me saying telling me to check the site out again and I did.  Not sure when they went out of Beta because I’ve not been using Always VPN lately due to my Broadband Cricket Prepay Internet.  I just checked and yes they are charging here’s the break down:

• 5GB – USD 8.50
• 10GB – USD 15.00
• 20GB – USD 26.00
• 40GB – USD 33.00
• 80GB – USD 47.00

So I must ask why they didn’t just keep the 5 GB limit with the Advertising, I do not know but  I did want to let people know that it is no longer free and no longer in Beta.  I went from Always to OpenVPN which still works despite the fact they are using Always VPN back client.   It’s open source so it will probably change to something else sooner or later.   If you see it changes let me know, I will update more when I find out more!!

©2010 . All Rights Reserved.